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•• The MAILING DATE of this communication appears on the cover sheet with the correspondence address - 
Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

• If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

• Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the malting date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1 )^ Responsive to communication(s) filed on 02/10/04 , 
2a)D This action is FINAL. 2b)M This action is non-final. 

3) n Since this application is in condition for allowance except for fomnal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex pa/te Quay/e, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) 13 Claim(s) 1-34 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) 13 Claimfs^ 1-6.12-17.22-28 and 34 is/are allowed. 

6) 13 Claim(s) 7-11. 18-22, and 29-33 is/are reiected. 
?)□ Claim{s) is/are objected to. 

8) n Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) n The specification is objected to by the Examiner. 

10) 0 The drawing(s) filed on is/are: a)^ accepted or b)n objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1, 85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

1 1) 0 The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 11 9 

12) 0 Acknowledgment is made of a claim for foreign priority under 35 U.S.C, § 119(a)-(d) or (f). 
a)n All b)n Some * c)^ None of: 

1 .□ Certified copies of the priority documents have been received. 

2. n Certified copies of the priority documents have been received in Application No. . 

3. n Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 

Response to Amendment 

This office action is in response to amendment filed on 09/21/04. Original application 
contained Claims 1-34. The amendment filed on 09/21/04 have been entered and made of 
record. Therefore, presently pending claims are 1-34. 

Response to Arguments 

Applicant's arguments filed 09/21/04 have been fiilly considered and are persuasive. 

Claim Rejections - 35 USC §103 
The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 

obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

Claims 1-6, 12-17, 22-28, and 34 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over JaliH (6,209,104 Bl) in view of Kumar (6,535,980). 

In reference to claims 1,12, and 23, Jalili discloses a method, apparatus, and computer 
readable medium for verifying the legitimacy of an untrusted mechanism, comprising: 
submitting information to an untrusted mechanism. Receiving a response from the untrusted 
mechanism for each submission of either said first set of information or said second set of 
information (column 8 lines 1-15). Determining whether each response received from the 
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untrusted mechanism is a correct response (column 8 lines 5-14). In response to a determination 
that any of the responses from the untrusted mechanism is an incorrect response, determining the 
untrusted mechanism to not be legitimate (column 8 lines 14-15). The response must be correct 
to be allowed access therefore an incorrect response would not allow access therefore indicating 
an illegitimate, or untrusted mechanism. 

Although Jalili discloses submitting information to an untrusted mechanism, Jalili does 
not disclose submitting a fist set of information and a second set of information to an untrusted 
mechanism in a sequence that is unpredictable to the untrusted mechanism. 

Kumar discloses a method, apparatus, and computer readable medium for verifying the 
legitimacy of an untrusted mechanism, comprising: submitting a first set of information (correct 
responses) and a second set of information (incorrect responses) to an untrusted mechanism in a 
sequence that is unpredictable to the untrusted mechanism (column 3 lines 40-55). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to submit data in a sequence that is' unpredictable to the untrusted mechanism as in 
Kumar in the system of Jalili. One of ordinary skill in the art would have been motivated to do 
this because the challenge response is a suitable method for sending arbitrary messages in a 
secret fashion (Kumar column 2 lines 63-67). 

In reference to claims 2, 5, 13-14, 24, and 25, wherein said sequence is generated 
randomly. The sequence is generated using a random number generator (column 8 lines 20-32). 

In reference to claim 4, 15, and 26, Although Jalili discloses submitting information to an 
untrusted mechanism, Jalili does not disclose submitting a fist set of information and a second set 
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of information to an untrusted mechanism in a sequence that is unpredictable to the untrusted 
mechanism. 

Kumar discloses a system wherein said sequence includes at least one submission of said 
first set of information and at least one submission of said second set of information (column 3 
lines 40-55). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to submit data in a sequence that is unpredictable to the untrusted mechanism as in 
Kumar in the system of Jalili. One of ordinary skill in the art would have been motivated to do 
this because the challenge response is a suitable method for sending arbitrary messages in a 
secret fashion (Kumar column 2 lines 63-67). 

In reference to claims 5, 16, and 27, wherein said first set of information is designed to 
solicit a first proper response fi-om the untrusted mechanism, and said second set of information 
is designed to solicit a second proper response from the untrusted mechanism, and wherein 
determining whether each response received from the untrusted mechanism is a correct response 
comprises: where the set of information submitted to the untrusted mechanism was said first set 
of information, determining whether the response from the untrusted mechanism is said first 
proper response (column 6 lines 3 1-49); and where the set of information submitted to the 
untrusted mechanism was said second set of information, determining whether the response from 
the untrusted mechanism is said second proper response (column 8 lines 14-15). The first set of 
information would be the information representing the user's password and the second set of 
information would be all the other information that does not represent the user's password. 
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In reference to claim 6, 17, and 28, wherein said first proper response is an affirmative 
response, and wherein said second proper response is a negative response (column 8 lines 14- 
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15). 



Allowable Subject Matter 



Claims 7-11, 18-22, and 29-33 are allowed. 



Conclusion 
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